Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
File: qlTEdj6gGMPccCA9BO_nH9SxsGY.mft (raw, json)
Hash identifier: EBys2OARwcu8EAw0Tdy9XrK6zap82PE+JNOxM/om6Mc=
Subject key identifier: F6:50:AA:CA:C7:DB:E6:27:F1:4E:1C:C6:A7:F6:1D:DD:BE:C7:7A:A2
Authority key identifier: AA:54:C4:76:3E:A0:18:C3:DC:70:20:3D:04:EF:E7:1F:D4:B1:B0:66
Certificate issuer: /CN=aa54c4763ea018c3dc70203d04efe71fd4b1b066
Certificate serial: 0199FC58A7E152E274C0337DC32E1DC0E740
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
Manifest number: 13C1
Signing time: Sun 19 Oct 2025 12:01:32 +0000
Manifest this update: Sun 19 Oct 2025 12:01:32 +0000
Manifest next update: Mon 20 Oct 2025 12:01:32 +0000
Files and hashes: 1: 3uOrqvmP8Ja1Ais3wLBFc-Yv8js.roa (hash: exOhjbpn5m/SyHb+kmTmnk1GW2qg2u8lsLmmerL5o9w=)
2: IzP3cDAX9aykSDzKdoH0u3AyA2M.roa (hash: NC8YDjUxW5EM3pV7QmdgO/vAJ9HwNpXuNP3EpqENObk=)
3: f2dJVu8muGYFnZFPcMivMl98KP8.roa (hash: rWmOSQ2QhYKl4L1IyTfTDLKWAGfQI+Kz8vdUqnsATxs=)
4: qlTEdj6gGMPccCA9BO_nH9SxsGY.crl (hash: tgXR8FJJmFUgYVTf5eojXBpn2EkK1HE8FYYXcCByBYo=)
5: svOlfPLlFDJ0sGLcz6b_IG_H3W0.roa (hash: zsvLBGGbQT+oIT4diXH9qGrVZIYbNUKP7yL6prMLg/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:a7:e1:52:e2:74:c0:33:7d:c3:2e:1d:c0:e7:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa54c4763ea018c3dc70203d04efe71fd4b1b066
Validity
Not Before: Oct 19 12:01:32 2025 GMT
Not After : Oct 20 12:01:32 2025 GMT
Subject: CN=f650aacac7dbe627f14e1cc6a7f61dddbec77aa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a0:ac:a9:41:9e:8b:ff:ae:0f:41:d8:d8:1e:
17:86:f4:a9:9a:06:16:a7:f0:9a:74:ac:fd:d5:ba:
a9:d6:bc:f0:2c:fc:13:ad:0e:0d:7b:02:d0:3d:c0:
dc:f7:9a:9b:91:49:ec:18:d0:a6:a5:09:4b:e0:c3:
b9:b5:90:8f:ec:62:c2:5f:e8:b8:7e:db:db:f2:1f:
09:68:bd:62:9c:65:2e:b3:31:03:7f:45:68:17:5c:
04:54:c7:fa:9a:f7:1d:eb:da:a5:fa:94:52:db:0f:
42:59:e3:3b:d0:9a:eb:1f:e9:76:8a:d5:03:56:2c:
88:83:2a:2f:bb:0a:96:f8:dc:fd:1c:10:40:c9:09:
ac:f3:10:aa:51:58:50:52:50:93:66:0f:b5:55:70:
2f:95:a1:2f:88:d3:27:05:64:68:88:09:73:96:5c:
1d:f2:24:b7:4e:d9:35:4d:98:f5:6e:06:da:ea:d0:
12:99:ae:19:4f:12:90:f5:4d:6e:f2:cc:b1:0f:69:
f6:ea:ef:1a:fa:4e:19:fc:d9:f7:99:8f:cb:1c:a6:
d5:00:54:0d:92:8e:eb:cc:93:29:d6:bb:57:93:e6:
80:b7:63:62:90:57:66:ce:6d:95:c5:6f:1d:9d:df:
99:d1:ac:b7:59:10:c2:b3:a1:32:5e:bd:c1:58:bb:
fe:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:50:AA:CA:C7:DB:E6:27:F1:4E:1C:C6:A7:F6:1D:DD:BE:C7:7A:A2
X509v3 Authority Key Identifier:
keyid:AA:54:C4:76:3E:A0:18:C3:DC:70:20:3D:04:EF:E7:1F:D4:B1:B0:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:83:32:80:e1:7c:eb:bd:77:6a:c8:3b:73:28:22:f6:bb:a8:
7e:79:f3:30:a8:9c:03:c5:7a:59:a7:fa:17:2e:30:85:b1:84:
ab:c4:9b:84:f5:b8:78:23:86:9b:a5:d1:f4:49:1a:1f:b0:28:
89:de:54:f6:5a:c9:8f:c3:de:fb:91:e7:13:a0:05:56:47:d2:
e3:fa:0e:68:4a:eb:6c:08:77:ca:f8:01:67:27:91:ec:0e:6d:
d1:cf:fd:60:d6:f5:a4:44:cd:61:d4:9e:b1:f2:a1:70:cf:6f:
0c:01:49:16:6d:54:9b:d4:17:5c:bb:55:35:45:58:0d:88:20:
5e:6f:c3:9d:22:ac:d8:bd:e6:6e:1f:49:81:91:9f:14:bb:c0:
8d:1e:b1:6d:68:91:81:c0:fb:97:3d:4e:20:86:ef:b4:2f:b3:
59:66:89:25:4f:1f:c0:f2:3a:bb:fe:59:fb:5b:82:46:6e:7f:
60:ea:b4:6e:33:97:ed:e7:e7:af:65:23:fc:be:74:06:13:de:
07:f2:f2:a3:13:72:37:69:a7:27:d3:28:82:6b:b2:34:75:f8:
37:53:cf:11:9a:20:f6:79:9a:da:9f:7c:5f:9f:d3:9a:c0:9d:
14:cb:1f:33:59:f4:9a:56:c7:0d:8c:e3:a4:c1:17:0d:6d:03:
17:48:ea:64
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8WKfhUuJ0wDN9wy4dwOdAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhNTRjNDc2M2VhMDE4YzNkYzcwMjAzZDA0ZWZlNzFmZDRi
MWIwNjYwHhcNMjUxMDE5MTIwMTMyWhcNMjUxMDIwMTIwMTMyWjAzMTEwLwYDVQQD
EyhmNjUwYWFjYWM3ZGJlNjI3ZjE0ZTFjYzZhN2Y2MWRkZGJlYzc3YWEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxaCsqUGei/+uD0HY2B4XhvSpmgYW
p/CadKz91bqp1rzwLPwTrQ4NewLQPcDc95qbkUnsGNCmpQlL4MO5tZCP7GLCX+i4
ftvb8h8JaL1inGUuszEDf0VoF1wEVMf6mvcd69ql+pRS2w9CWeM70JrrH+l2itUD
ViyIgyovuwqW+Nz9HBBAyQms8xCqUVhQUlCTZg+1VXAvlaEviNMnBWRoiAlzllwd
8iS3Ttk1TZj1bgba6tASma4ZTxKQ9U1u8syxD2n26u8a+k4Z/Nn3mY/LHKbVAFQN
ko7rzJMp1rtXk+aAt2NikFdmzm2VxW8dnd+Z0ay3WRDCs6EyXr3BWLv+9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPZQqsrH2+Yn8U4cxqf2Hd2+x3qiMB8GA1UdIwQY
MBaAFKpUxHY+oBjD3HAgPQTv5x/UsbBmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWxURWRqNmdHTVBjY0NBOUJPX25IOVN4c0dZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9hMjFjOWUtODdmMS00OTgzLTgzOTQt
ZGUzNzY3M2M0MDljLzEvcWxURWRqNmdHTVBjY0NBOUJPX25IOVN4c0dZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9hMjFjOWUtODdmMS00OTgzLTgzOTQtZGUzNzY3M2M0MDlj
LzEvcWxURWRqNmdHTVBjY0NBOUJPX25IOVN4c0dZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD4MygOF8
6713asg7cygi9ruofnnzMKicA8V6Waf6Fy4whbGEq8SbhPW4eCOGm6XR9EkaH7Ao
id5U9lrJj8Pe+5HnE6AFVkfS4/oOaErrbAh3yvgBZyeR7A5t0c/9YNb1pETNYdSe
sfKhcM9vDAFJFm1Um9QXXLtVNUVYDYggXm/DnSKs2L3mbh9JgZGfFLvAjR6xbWiR
gcD7lz1OIIbvtC+zWWaJJU8fwPI6u/5Z+1uCRm5/YOq0bjOX7efnr2Uj/L50BhPe
B/LyoxNyN2mnJ9MogmuyNHX4N1PPEZog9nma2p98X5/TmsCdFMsfM1n0mlbHDYzj
pMEXDW0DF0jqZA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:33:09 2025 by rpki-client